NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 2009-05

302 messages sorted by: [ author ] [ date ] [ thread ]

Starting: Fri May 01 2009 - 10:15:36 CDT
Ending: Fri May 29 2009 - 14:12:30 CDT

(GET var 'id') BLIND SQL INJECTION EXPLOIT --Dog Pedigree Online Database v1.0.1-Beta -->
- y3nh4ck3rgmail.com (Tue May 19 2009 - 11:48:00 CDT)
(GET var 'member') BLIND SQL INJECTION EXPLOIT --FAMILY CONNECTIONS <= v1.9 -->
- y3nh4ck3rgmail.com (Wed May 13 2009 - 11:30:37 CDT)
(GET vars 'x' & 'y') ADMIN FUNCTION EXECUTION--Jorp v-1.3.05.09-->
- y3nh4ck3rgmail.com (Wed May 20 2009 - 12:15:51 CDT)
(POST var 'rating') BLIND SQL INJECTION--microTopic v1 Initial Release-->
- y3nh4ck3rgmail.com (Mon May 11 2009 - 12:16:28 CDT)
(whitepaper) Microsoft WPAD Technology Weaknesses [PTResearch Team]
- srublevptsecurity.ru (Fri May 29 2009 - 10:59:19 CDT)
[ GLSA 200905-01 ] Asterisk: Multiple vulnerabilities
- Robert Buchholz (Sat May 02 2009 - 12:54:49 CDT)
[ GLSA 200905-02 ] Cscope: User-assisted execution of arbitrary code
- Pierre-Yves Rofes (Sun May 24 2009 - 08:05:12 CDT)
[ GLSA 200905-03 ] IPSec Tools: Denial of Service
- Alex Legler (Sun May 24 2009 - 08:20:38 CDT)
[ GLSA 200905-04 ] GnuTLS: Multiple vulnerabilities
- Alex Legler (Sun May 24 2009 - 08:33:51 CDT)
[ GLSA 200905-05 ] FreeType: Multiple vulnerabilities
- Alex Legler (Sun May 24 2009 - 13:02:03 CDT)
[ GLSA 200905-06 ] acpid: Denial of Service
- Pierre-Yves Rofes (Sun May 24 2009 - 13:41:43 CDT)
[ GLSA 200905-07 ] Pidgin: Multiple vulnerabilities
- Alex Legler (Mon May 25 2009 - 16:59:01 CDT)
[ GLSA 200905-08 ] NTP: Remote execution of arbitrary code
- Alex Legler (Tue May 26 2009 - 11:06:20 CDT)
[ GLSA 200905-09 ] libsndfile: User-assisted execution of arbitrary code
- Alex Legler (Wed May 27 2009 - 13:37:21 CDT)
[ MDVSA-2009:102 ] apache
- securitymandriva.com (Fri May 01 2009 - 08:37:01 CDT)
[ MDVSA-2009:103 ] udev
- securitymandriva.com (Thu Apr 30 2009 - 22:01:00 CDT)
[ MDVSA-2009:104 ] udev
- securitymandriva.com (Thu Apr 30 2009 - 22:09:00 CDT)
[ MDVSA-2009:105 ] memcached
- securitymandriva.com (Mon May 04 2009 - 08:05:00 CDT)
[ MDVSA-2009:106 ] libwmf
- securitymandriva.com (Tue May 05 2009 - 17:02:00 CDT)
[ MDVSA-2009:107 ] acpid
- securitymandriva.com (Wed May 06 2009 - 17:51:01 CDT)
[ MDVSA-2009:108 ] zsh
- securitymandriva.com (Thu May 07 2009 - 08:06:01 CDT)
[ MDVSA-2009:109 ] quagga
- securitymandriva.com (Sun May 10 2009 - 10:32:00 CDT)
[ MDVSA-2009:110 ] squirrelmail
- securitymandriva.com (Tue May 12 2009 - 18:10:00 CDT)
[ MDVSA-2009:111 ] firefox
- securitymandriva.com (Tue May 12 2009 - 21:17:01 CDT)
[ MDVSA-2009:111-1 ] firefox
- securitymandriva.com (Wed May 13 2009 - 08:18:00 CDT)
[ MDVSA-2009:112 ] ipsec-tools
- securitymandriva.com (Wed May 13 2009 - 16:44:01 CDT)
[ MDVSA-2009:113 ] cyrus-sasl
- securitymandriva.com (Mon May 18 2009 - 07:08:01 CDT)
[ MDVSA-2009:114 ] ipsec-tools
- securitymandriva.com (Mon May 18 2009 - 08:36:00 CDT)
[ MDVSA-2009:115 ] phpMyAdmin
- securitymandriva.com (Mon May 18 2009 - 09:47:00 CDT)
[ MDVSA-2009:116 ] gnutls
- securitymandriva.com (Mon May 18 2009 - 10:17:00 CDT)
[ MDVSA-2009:117 ] ntp
- securitymandriva.com (Tue May 19 2009 - 09:50:00 CDT)
[ MDVSA-2009:118 ] kernel
- securitymandriva.com (Tue May 19 2009 - 13:58:00 CDT)
[ MDVSA-2009:119 ] kernel
- securitymandriva.com (Tue May 19 2009 - 14:55:00 CDT)
[ MDVSA-2009:120 ] openssl
- securitymandriva.com (Thu May 21 2009 - 11:11:01 CDT)
[ MDVSA-2009:121 ] lcms
- securitymandriva.com (Thu May 21 2009 - 16:23:00 CDT)
[ MDVSA-2009:122 ] squirrelmail
- securitymandriva.com (Sat May 23 2009 - 05:24:00 CDT)
[ MDVSA-2009:123 ] opensc
- securitymandriva.com (Wed May 27 2009 - 14:12:00 CDT)
[Bkis-08-2009] Microchip MPLAB IDE Buffer Overflow Vulnerability
- Bkis (Mon May 11 2009 - 00:06:47 CDT)
[Bkis-09-2009] XSS vulnerability in 'Monitor_Bandwidth' - PRTG Traffic Grapher
- Bkis (Wed May 27 2009 - 22:59:51 CDT)
[DSECRG-09-034] Sun Glassfish Enterprise Server - Multiple Linked XSS vulnerabilies
- Digital Security Research Group [DSecRG] (Tue May 05 2009 - 08:59:23 CDT)
[DSECRG-09-038] Sun Glassfish Woodstock Project - Linked XSS Vulnerability
- Digital Security Research Group [DSecRG] (Tue May 05 2009 - 09:02:19 CDT)
[Full-disclosure] [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG)
- Thierry Zoller (Wed May 27 2009 - 14:03:07 CDT)
- Michal Zalewski (Wed May 27 2009 - 13:43:42 CDT)
[Full-disclosure] Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG)
- Thierry Zoller (Wed May 27 2009 - 13:38:18 CDT)
[IMF 2009] 3rd Call - Deadline Extended
- Oliver Goebel (Tue May 26 2009 - 14:03:21 CDT)
[InterN0T] Achievo 1.3.4 - XSS Vulnerability
- securityintern0t.net (Fri May 29 2009 - 02:31:13 CDT)
- securityintern0t.net (Thu May 28 2009 - 15:52:12 CDT)
[InterN0T] AdPeeps 8.5d1 - XSS and HTML Injection Vulnerabilities
- supportadpeeps.com (Thu May 28 2009 - 18:05:40 CDT)
- securityintern0t.net (Wed May 27 2009 - 14:16:54 CDT)
[InterN0T] AMember 3.1.7 - Multiple Vulnerabilities
- securityintern0t.net (Thu May 28 2009 - 16:27:00 CDT)
- TK147TheArchitect.com (Thu May 28 2009 - 11:19:56 CDT)
- securityintern0t.net (Sun May 24 2009 - 11:35:15 CDT)
[oCERT-2009-001] Pango integer overflow in heap allocation size calculations
- Will Drewry (Thu May 07 2009 - 12:42:27 CDT)
[oCERT-2009-004] AjaxTerm session id collision
- Andrea Barisani (Mon May 11 2009 - 11:43:41 CDT)
[oCERT-2009-006] Android improper package verification when using shared uids
- Will Drewry (Fri May 22 2009 - 16:29:53 CDT)
[RT-SA-2009-001] IceWarp WebMail Server: Cross Site Scripting in Email View
- RedTeam Pentesting GmbH (Tue May 05 2009 - 07:43:48 CDT)
[RT-SA-2009-002] IceWarp WebMail Server: User-assisted Cross Site Scripting in RSS Feed Reader
- RedTeam Pentesting GmbH (Tue May 05 2009 - 07:46:27 CDT)
[RT-SA-2009-003] IceWarp WebMail Server: SQL Injection in Groupware Component
- RedTeam Pentesting GmbH (Tue May 05 2009 - 07:47:51 CDT)
[RT-SA-2009-004] IceWarp WebMail Server: Client-Side Specification of "Forgot Password" eMail Content
- RedTeam Pentesting GmbH (Tue May 05 2009 - 07:49:16 CDT)
[SecNiche WhitePaper ] - PDF Silent HTTP Form Repurposing Attacks
- Aditya K Sood (Sun May 03 2009 - 13:15:37 CDT)
[security bulletin] HPSBMA02348 SSRT080033 rev.2 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code, Denial of Service (DoS)
- security-alerthp.com (Mon May 11 2009 - 13:41:00 CDT)
[security bulletin] HPSBMA02349 SSRT080043 rev.3 - HP OpenView Network Node Manager (OV NNM), Remote Unauthorized Access to Data
- security-alerthp.com (Mon May 11 2009 - 13:41:40 CDT)
[security bulletin] HPSBMA02374 SSRT080046 rev.2 - HP OpenView Network Node Manager (OV NNM), Remote Denial of Service (DoS)
- security-alerthp.com (Mon May 04 2009 - 12:35:55 CDT)
[security bulletin] HPSBMA02417 SSRT090031 rev.1 - HP Data Protector Express and HP Data Protector Express Single Server Edition (SSE), Local Denial of Service (DoS), Execution of Arbitrary Code
- security-alerthp.com (Thu May 14 2009 - 08:26:10 CDT)
[security bulletin] HPSBMA02419 SSRT090060 rev.1 - Insight Control Suite For Linux (ICE-LX) Multiple Remote Vulnerabilities In Nagios
- security-alerthp.com (Tue May 05 2009 - 15:51:02 CDT)
[security bulletin] HPSBMA02425 SSRT080091 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code
- security-alerthp.com (Mon May 04 2009 - 12:33:45 CDT)
[security bulletin] HPSBMA02426 SSRT090053 rev.1 - HP System Management Homepage (SMH) for Linux and Windows Running PHP and OpenSSL, Remote Cross Site Scripting (XSS), Unauthorized Access
- Steve Shockley (Wed May 20 2009 - 14:46:10 CDT)
- security-alerthp.com (Fri May 15 2009 - 08:03:15 CDT)
[security bulletin] HPSBMA02427 SSRT090069 rev.1 - HP Remote Graphics Software (RGS) Sender Running Easy Login, Remote Unauthorized Access
- security-alerthp.com (Fri May 15 2009 - 08:06:40 CDT)
[security bulletin] HPSBMA02428 SSRT090048 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Cross Site Scripting (XSS)
- security-alerthp.com (Mon May 18 2009 - 13:49:50 CDT)
[security bulletin] HPSBPI02398 SSRT080166 rev.3 - Certain HP LaserJet Printers, HP Color LaserJet Printers, and HP Digital Senders, Remote Unauthorized Access to Files
- security-alerthp.com (Wed May 20 2009 - 11:57:25 CDT)
[security bulletin] HPSBUX02366 SSRT080120 rev.2 - HPUX Running useradd(1M), Local Unauthorized Access
- security-alerthp.com (Fri May 08 2009 - 08:18:38 CDT)
[security bulletin] HPSBUX02429 SSRT090058 rev.1 - HP-UX Running Java, Remote Execution of Arbitrary Code and Other Vulnerabilities
- security-alerthp.com (Wed May 27 2009 - 08:42:21 CDT)
[SECURITY] [DSA 1784-1] New freetype packages fix arbitrary code execution
- Nico Golde (Thu Apr 30 2009 - 13:14:37 CDT)
[SECURITY] [DSA 1785-1] New wireshark packages fix several vulnerabilities
- Moritz Muehlenhoff (Fri May 01 2009 - 09:46:49 CDT)
[SECURITY] [DSA 1786-1] New acpid packages fix denial of service
- Steffen Joeris (Fri May 01 2009 - 20:52:49 CDT)
[SECURITY] [DSA 1787-1] New Linux 2.6.24 packages fix several vulnerabilities
- dann frazier (Sat May 02 2009 - 13:33:03 CDT)
[SECURITY] [DSA 1787-1] New quagga packages fix denial of service
- Florian Weimer (Mon May 04 2009 - 15:19:03 CDT)
[SECURITY] [DSA 1789-1] New php5 packages fix several vulnerabilities
- Thijs Kinkhorst (Mon May 04 2009 - 15:57:57 CDT)
[SECURITY] [DSA 1790-1] New xpdf packages fix multiple vulnerabilities
- Noah Meyerhans (Tue May 05 2009 - 15:05:20 CDT)
[SECURITY] [DSA 1791-1] New moin packages fix cross-site scripting
- Steffen Joeris (Wed May 06 2009 - 06:41:28 CDT)
[SECURITY] [DSA 1792-1] New drupal6 packages fix multiple vulnerabilities
- Noah Meyerhans (Wed May 06 2009 - 10:54:22 CDT)
[SECURITY] [DSA 1793-1] New kdegraphics packages fix multiple vulnerabilities
- Noah Meyerhans (Wed May 06 2009 - 11:47:53 CDT)
[SECURITY] [DSA 1794-1] New Linux 2.6.18 packages fix several vulnerabilities
- dann frazier (Wed May 06 2009 - 18:23:13 CDT)
[SECURITY] [DSA 1795-1] New ldns packages fix arbitrary code execution
- Devin Carraway (Thu May 07 2009 - 01:18:29 CDT)
[SECURITY] [DSA 1796-1] New libwmf packages fix denial of service
- Nico Golde (Thu May 07 2009 - 11:21:33 CDT)
[SECURITY] [DSA 1797-1] New xulrunner packages fix several vulnerabilities
- Moritz Muehlenhoff (Sat May 09 2009 - 08:00:16 CDT)
[SECURITY] [DSA 1798-1] New pango1.0 packages fix arbitrary code execution
- Steffen Joeris (Sun May 10 2009 - 04:29:15 CDT)
[SECURITY] [DSA 1799-1] New qemu packages fix several vulnerabilities
- Moritz Muehlenhoff (Mon May 11 2009 - 16:13:09 CDT)
[SECURITY] [DSA 1800-1] New Linux 2.6.26 packages fix several vulnerabilities
- dann frazier (Fri May 15 2009 - 14:17:51 CDT)
[SECURITY] [DSA 1801-1] New ntp packages fix several vulnerabilities
- Thijs Kinkhorst (Tue May 19 2009 - 08:55:33 CDT)
[SECURITY] [DSA 1802-1] New squirrelmail packages fix several vulnerabilities
- Thijs Kinkhorst (Tue May 19 2009 - 12:17:37 CDT)
[SECURITY] [DSA 1802-2] New squirrelmail packages correct incomplete fix
- Thijs Kinkhorst (Thu May 21 2009 - 13:50:30 CDT)
[SECURITY] [DSA 1803-1] New nsd packages fix denial of service
- Thijs Kinkhorst (Wed May 20 2009 - 09:43:39 CDT)
[SECURITY] [DSA 1804-1] New ipsec-tools packages fix denial of service
- Nico Golde (Wed May 20 2009 - 09:06:43 CDT)
[SECURITY] [DSA 1805-1] New pidgin packages fix several vulnerabilities
- Moritz Muehlenhoff (Fri May 22 2009 - 15:04:08 CDT)
[SECURITY] [DSA 1806-1] New cscope packages fix arbitrary code execution
- Moritz Muehlenhoff (Sun May 24 2009 - 03:27:51 CDT)
[TKADV2009-006] libsndfile/Winamp VOC Processing Heap Buffer Overflow
- Tobias Klein (Sat May 16 2009 - 03:21:27 CDT)
[TOOL] moth - vulnerable web application vmware
- Andres Riancho (Thu May 07 2009 - 20:27:03 CDT)
[TZO-18-2009] Mcafee multiple evasions/bypasses (RAR, ZIP)
- Thierry Zoller (Fri May 01 2009 - 14:10:53 CDT)
[TZO-20-2009] AVG ZIP evasion / bypass
- Thierry Zoller (Sat May 09 2009 - 07:05:35 CDT)
[TZO-21-2009] Fprot CAB bypass / evasion
- Thierry Zoller (Sat May 09 2009 - 07:07:52 CDT)
[TZO-22-2009] Bitdefender generic evasion of heuristics (for PDF)
- Thierry Zoller (Mon May 18 2009 - 10:37:23 CDT)
[TZO-23-2009] Avira antivir generic evasion of heuristics (for PDF)
- Thierry Zoller (Mon May 18 2009 - 10:38:46 CDT)
[TZO-24-2009] Panda generic evasion (CAB)
- Thierry Zoller (Fri May 22 2009 - 08:55:40 CDT)
[TZO-25-2009] Panda generic evasion (TAR)
- Thierry Zoller (Fri May 22 2009 - 08:57:35 CDT)
[TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG)
- Thierry Zoller (Tue May 26 2009 - 07:20:52 CDT)
[TZO-27-2009] Firefox Denial of Service (Keygen)
- Thierry Zoller (Thu May 28 2009 - 12:48:21 CDT)
- Thierry Zoller (Wed May 27 2009 - 20:14:38 CDT)
- Tavis Ormandy (Thu May 28 2009 - 06:01:07 CDT)
[TZO-28-2009] - Avira Antivir generic RAR,CAB,ZIP
- Thierry Zoller (Fri May 29 2009 - 06:25:10 CDT)
[USN-769-1] libwmf vulnerability
- Marc Deslauriers (Mon May 04 2009 - 09:46:45 CDT)
[USN-770-1] ClamAV vulnerability
- Jamie Strandboge (Mon May 04 2009 - 18:06:29 CDT)
[USN-771-1] libmodplug vulnerabilities
- Marc Deslauriers (Thu May 07 2009 - 13:26:36 CDT)
[USN-772-1] MPFR vulnerability
- Marc Deslauriers (Thu May 07 2009 - 13:27:13 CDT)
[USN-773-1] Pango vulnerability
- Marc Deslauriers (Thu May 07 2009 - 13:27:51 CDT)
[USN-774-1] MoinMoin vulnerability
- Marc Deslauriers (Mon May 11 2009 - 10:21:34 CDT)
[USN-775-1] Quagga vulnerability
- Kees Cook (Tue May 12 2009 - 17:34:28 CDT)
[USN-776-1] KVM vulnerabilities
- Kees Cook (Tue May 12 2009 - 17:29:42 CDT)
[USN-776-2] KVM regression
- Marc Deslauriers (Wed May 13 2009 - 09:17:53 CDT)
[USN-777-1] Ntp vulnerabilities
- Jamie Strandboge (Tue May 19 2009 - 17:21:24 CDT)
[WEB SECURITY] [TOOL] moth - vulnerable web application vmware
- romain (Thu May 07 2009 - 22:41:14 CDT)
about inactive account hijacking
- innategmx.de (Sat May 02 2009 - 04:05:55 CDT)
Addendum : [TZO-26-2009] Firefox (all?) Denial of Service through unclamped loop (SVG)
- Vladimir '3APA3A' Dubrovin (Wed May 27 2009 - 13:59:18 CDT)
- Jim Parkhurst (Wed May 27 2009 - 10:56:56 CDT)
- Thierry Zoller (Tue May 26 2009 - 13:13:21 CDT)
Addonics NAS Adapter FTP Remote Denial of Service
- mcyr2csc.com (Fri May 01 2009 - 09:15:52 CDT)
Advisory - Gmail/Google Doc PDF Repurposing Integrated Attacks - Cookie Hijacking / Stealing
- Aditya K Sood (Mon May 11 2009 - 09:05:19 CDT)
Arcade Trade Script XSS
- SmOk3 (Mon May 25 2009 - 14:03:33 CDT)
Armorlogic Profense Web Application Firewall 2.4 multiple vulnerabilities.
- publistsenablesecurity.com (Wed May 20 2009 - 05:05:08 CDT)
Backdoor in com_rsgallery2 gallery extension for joomla
- Jonah Braun (Tue May 26 2009 - 17:08:56 CDT)
- Jan van Niekerk (Tue May 26 2009 - 01:03:32 CDT)
BH USA CFP closing next Tuesday
- jmoss (Thu Apr 30 2009 - 18:34:37 CDT)
Bitweaver <= 2.6 /boards/boards_rss.php / saveFeed() remote code execution exploit
- nospamgmail.it (Mon May 11 2009 - 20:44:40 CDT)
BLIND SQL INJECTION exploit (GET var 'AlbumID')--RTWebalbum 1.0.462-->
- y3nh4ck3rgmail.com (Fri May 08 2009 - 11:39:42 CDT)
BLIND SQL INJECTION EXPLOIT--TemaTres 1.0.3-->
- y3nh4ck3rgmail.com (Tue May 05 2009 - 12:15:52 CDT)
BLIND SQL INJECTION--Leap CMS 0.1.4-->
- y3nh4ck3rgmail.com (Thu Apr 30 2009 - 11:47:53 CDT)
BugCON '09 has swine influenza!!
- Carlos Augusto (Mon May 18 2009 - 01:59:43 CDT)
CA20090126-01: CA Anti-Virus Engine Detection Evasion Multiple Vulnerabilities [Updated]
- Williams, James K (Tue May 12 2009 - 09:19:35 CDT)
CA20090429-01: CA ARCserve Backup Apache HTTP Server Multiple Vulnerabilities
- Williams, James K (Thu Apr 30 2009 - 14:49:30 CDT)
Call for Papers Hack.lu 2009
- hack.lu 2009 info (Mon May 04 2009 - 02:54:52 CDT)
Call For Papers – ACM CCS 2009 Workshops
- Christopher Kruegel (Wed May 27 2009 - 19:03:30 CDT)
Changes : [TZO-17-2009]Trendmicro multiple bypass/evasions
- Thierry Zoller (Sat May 09 2009 - 05:24:24 CDT)
ChinaGames (CGAgent.dll) ActiveX Remote Code Execution Exploit
- infosecuritylab.ir (Sat May 23 2009 - 04:35:46 CDT)
Cisco Security Advisory: CiscoWorks TFTP Directory Traversal Vulnerability
- Cisco Systems Product Security Incident Response Team (Wed May 20 2009 - 09:49:33 CDT)
Claroline v.1.8.11 Cross-Site Scripting
- darkz.gsagmail.com (Fri May 08 2009 - 01:47:17 CDT)
CONFidence 2009 trainings
- andrzej.targoszgmail.com (Tue May 05 2009 - 03:04:54 CDT)
Coppermine Photo Gallery 1.4.21 Cross-Site Scripting
- darkz.gsagmail.com (Mon May 04 2009 - 04:31:26 CDT)
CORE-2009-0109 - Multiple XSS in Sun Communications Express
- CORE Security Technologies Advisories (Wed May 20 2009 - 13:01:57 CDT)
CORE-2009-0401 - StoneTrip S3DPlayers remote command injection
- CORE Security Technologies Advisories (Thu May 28 2009 - 14:04:02 CDT)
COWON America jetCast 2.0.4.1109 (.mp3) local heap buffer overlow exploit
- nospamgmail.it (Tue May 26 2009 - 04:30:49 CDT)
DDIVRT-2009-25 IPsession SQL Injection Vulnerability
- ddvulnalertddifronline.com (Thu May 21 2009 - 10:14:22 CDT)
DMXReady Registration Manager Arbitrary File Upload Vulnerability
- infosecuritylab.ir (Wed May 20 2009 - 04:35:28 CDT)
DotNetNuke ErrorPage.aspx Cross-Site Scripting Vulnerability
- Ben Hawkes (Thu May 21 2009 - 20:10:36 CDT)
Durzosploit v0.1 alpha
- Benjilenoob (Fri May 01 2009 - 05:05:41 CDT)
ecshop 2.6.2
- infosecuritylab.ir (Thu May 28 2009 - 10:00:03 CDT)
eggdrop/windrop remote crash vulnerability
- Thomas Sader (Thu May 14 2009 - 22:54:08 CDT)
EUSecWest 2009 (May27/28) London Agenda and PacSec 2009 (Nov 4/5) Tokyo CFP deadline: June 1 2009
- Dragos Ruiu (Wed May 06 2009 - 17:26:12 CDT)
Exploiting IE8 UTF-7 XSS Vulnerability using Local Redirection
- InfernoSecurethoughts.com (Mon May 11 2009 - 23:53:55 CDT)
Five days left to find the oldest data loss incident
- Elazar Broad (Mon May 11 2009 - 23:39:59 CDT)
- Dragos Ruiu (Mon May 11 2009 - 11:39:47 CDT)
- Juha-Matti Laurio (Mon May 11 2009 - 09:29:23 CDT)
FormMail 1.92 Multiple Vulnerabilities
- ascii (Wed May 13 2009 - 06:05:24 CDT)
- David Cantrell (Wed May 13 2009 - 05:10:14 CDT)
- ascii (Tue May 12 2009 - 05:32:56 CDT)
FUD Forum < 2.7.1 PHP code injection vurnelability
- naudefjtelkomsa.net (Mon May 25 2009 - 04:33:57 CDT)
Fwd: [Full-disclosure] IIS6 + webdav and unicode rides again in 2009
- Thierry Zoller (Fri May 15 2009 - 18:22:46 CDT)
Grabit <= 1.7.2 beta 3 NZB file parsing stack overflow
- Niels Teusink (Sun May 03 2009 - 16:27:56 CDT)
Hardening OSX against CVE-2008-5353
- Marc Schoenefeld (Sun May 24 2009 - 12:58:10 CDT)
HTTP Parameter Pollution
- Luca.carettoni (Tue May 19 2009 - 07:34:03 CDT)
iDefense Security Advisory 05.12.09: Microsoft PowerPoint 4.2 Conversion Filter Heap Corruption Vulnerability
- iDefense Labs (Tue May 12 2009 - 16:28:52 CDT)
iDefense Security Advisory 05.12.09: Microsoft PowerPoint 4.2 Conversion Filter Stack Buffer Overflow Vulnerability
- iDefense Labs (Tue May 12 2009 - 16:13:17 CDT)
iDefense Security Advisory 05.12.09: Microsoft PowerPoint 4.2 Conversion Filter Stack Overflow
- iDefense Labs (Tue May 12 2009 - 16:41:57 CDT)
iDefense Security Advisory 05.12.09: Microsoft PowerPoint Build List Memory Corruption Vulnerability
- iDefense Labs (Tue May 12 2009 - 17:41:24 CDT)
iDefense Security Advisory 05.12.09: Microsoft PowerPoint Integer Overflow Vulnerability
- iDefense Labs (Tue May 12 2009 - 18:13:24 CDT)
iDefense Security Advisory 05.12.09: Microsoft PowerPoint Notes Container Heap Corruption Vulnerability
- iDefense Labs (Tue May 12 2009 - 18:02:29 CDT)
iDefense Security Advisory 05.12.09: Microsoft PowerPoint PPT 4.0 Importer Multiple Stack Buffer Overflow Vulnerabilities
- iDefense Labs (Tue May 12 2009 - 16:58:01 CDT)
iDefense Security Advisory 05.12.09: Microsoft PowerPoint PPT95 Import Multiple Stack Buffer Overflow Vulnerabilities
- iDefense Labs (Tue May 12 2009 - 17:26:09 CDT)
- iDefense Labs (Tue May 12 2009 - 17:11:52 CDT)
iDefense Security Advisory 05.14.09: Apple Mac OS X xnu Kernel workqueue_additem/workqueue_removeitem Index Validation Vulnerability
- iDefense Labs (Thu May 14 2009 - 10:40:45 CDT)
iDefense Security Advisory 05.14.09: Multiple Vendor Outside In Multiple Integer Overflow Vulnerabilities
- iDefense Labs (Fri May 15 2009 - 14:55:36 CDT)
iDefense Security Advisory 05.14.09: Multiple Vendor Outside In Multiple Spreadsheet Buffer Overflow Vulnerabilities
- iDefense Labs (Fri May 15 2009 - 15:25:08 CDT)
iDefense Security Advisory 05.14.09: Multiple Vendor Outside In Spreadsheet Buffer Overflow Vulnerability
- iDefense Labs (Fri May 15 2009 - 15:19:32 CDT)
iDefense Security Advisory 05.14.09: Multiple Vendor Outside In Spreadsheet Integer Overflow Vulnerability
- iDefense Labs (Fri May 15 2009 - 15:07:19 CDT)
iDefense Security Advisory 05.20.09: IBM AIX libc MALLOCDEBUG File Overwrite Vulnerability
- iDefense Labs (Wed May 20 2009 - 13:37:10 CDT)
INSECURE COOKIE HANDLING VULNERABILITIES --Dog Pedigree Online Database v1.0.1-Beta-->
- y3nh4ck3rgmail.com (Tue May 19 2009 - 11:47:23 CDT)
Insufficient Authentication vulnerability in Acer notebooks
- Susan Bradley (Thu May 28 2009 - 15:41:53 CDT)
- MustLive (Tue May 26 2009 - 15:54:54 CDT)
- Susan Bradley (Tue May 19 2009 - 19:42:30 CDT)
- MustLive (Thu May 14 2009 - 17:02:18 CDT)
- Garrett M. Groff (Tue May 12 2009 - 09:17:41 CDT)
- Øystein Larsen (Tue May 12 2009 - 02:20:00 CDT)
- dpo5003gmail.com (Mon May 11 2009 - 21:14:50 CDT)
- David Sánchez Martín (Mon May 11 2009 - 08:55:04 CDT)
- MustLive (Sun May 10 2009 - 08:22:32 CDT)
Insufficient Authentication vulnerability in Asus notebook
- Just1n T1mberlake (Sat May 16 2009 - 17:05:58 CDT)
- Jim Harrison (Sun May 17 2009 - 11:10:15 CDT)
- Ansgar Wiechers (Fri May 15 2009 - 03:56:59 CDT)
- Susan Bradley (Fri May 15 2009 - 01:38:00 CDT)
- Bob Fiero (Thu May 14 2009 - 20:41:44 CDT)
- Steve Quan (Thu May 14 2009 - 15:36:49 CDT)
- nameless (Thu May 14 2009 - 16:09:20 CDT)
- Daniel Hazelton (Thu May 14 2009 - 15:05:29 CDT)
- Mike Wilson (Thu May 14 2009 - 15:13:38 CDT)
- Susan Bradley (Thu May 14 2009 - 14:39:29 CDT)
- Susan Bradley (Thu May 14 2009 - 14:35:33 CDT)
- Ansgar Wiechers (Thu May 14 2009 - 13:11:24 CDT)
- KF (lists) (Thu May 14 2009 - 13:07:09 CDT)
- Michael Scheidell (Thu May 14 2009 - 11:25:57 CDT)
- nameless (Thu May 14 2009 - 11:42:43 CDT)
- Mike Wilson (Thu May 14 2009 - 11:17:48 CDT)
- Bob Fiero (Thu May 14 2009 - 10:11:51 CDT)
- Mike Vasquez (Thu May 14 2009 - 10:02:38 CDT)
- Susan Bradley (Thu May 14 2009 - 09:16:58 CDT)
- Jeremy Brown (Thu May 14 2009 - 08:37:32 CDT)
- MustLive (Thu May 14 2009 - 08:23:53 CDT)
LayerOne 2009 - Final Announcement
- LayerOne Call For Papers (Mon May 04 2009 - 12:38:22 CDT)
LxBlog
- infosecuritylab.ir (Fri May 22 2009 - 04:07:19 CDT)
maxcms2.0 creat new admin exploit
- infosecuritylab.ir (Wed May 13 2009 - 11:15:12 CDT)
MULTIPLE CODE INJECTION VULNERABILITIES --TUENTI--SPAIN-->
- y3nh4ck3rgmail.com (Thu May 14 2009 - 11:47:57 CDT)
MULTIPLE REMOTE SQL INJECTION VULNERABILITIES---MIM:InfiniX v1.2.003--->
- y3nh4ck3rgmail.com (Thu May 14 2009 - 12:16:54 CDT)
- Tomas Kuliavas (Thu May 14 2009 - 11:42:29 CDT)
- robiecn.org (Thu May 14 2009 - 04:39:23 CDT)
MULTIPLE REMOTE VULNERABILITIES --MiniTwitter<=v0.3-Beta-->
- y3nh4ck3rgmail.com (Fri May 22 2009 - 17:50:26 CDT)
MULTIPLE REMOTE VULNERABILITIES --my-colex 1.4.2-->
- y3nh4ck3rgmail.com (Fri May 15 2009 - 14:28:04 CDT)
MULTIPLE REMOTE VULNERABILITIES --my-Gesuad 0.9.14-->
- y3nh4ck3rgmail.com (Fri May 15 2009 - 14:28:41 CDT)
MULTIPLE REMOTE VULNERABILITIES --Small Pirates v-2.1-->
- y3nh4ck3rgmail.com (Wed May 27 2009 - 17:10:42 CDT)
MULTIPLE REMOTE VULNERABILITIES--TemaTres 1.0.3-->
- y3nh4ck3rgmail.com (Tue May 05 2009 - 12:07:02 CDT)
MULTIPLE SQL INJECTION VULNERABILITIES --Flash Quiz Beta 2-->
- y3nh4ck3rgmail.com (Thu May 21 2009 - 11:45:09 CDT)
MULTIPLE SQL INJECTION VULNERABILITIES --Joomla Component 'Boy Scout Advancement' <= v-0.3 (com_bsadv)-->
- y3nh4ck3rgmail.com (Sun May 24 2009 - 20:26:59 CDT)
MULTIPLE SQL INJECTION VULNERABILITIES --MiniTwitter v0.2-Beta-->
- y3nh4ck3rgmail.com (Fri May 01 2009 - 09:26:14 CDT)
MULTIPLE SQL INJECTION VULNERABILITIES --Shutter v-0.1.1-->
- y3nh4ck3rgmail.com (Thu May 14 2009 - 11:49:09 CDT)
multiple vendor - PF NULL pointer dereference
- rembrandt (Thu Apr 30 2009 - 16:22:05 CDT)
Multiple vulnerabilities in several ATEN IP KVM Switches
- Jakob Lell (Tue May 26 2009 - 07:07:26 CDT)
MULTPLE REMOTE VULNERABILITIES --ProjectCMS v-1.1 Beta-->
- y3nh4ck3rgmail.com (Mon May 04 2009 - 12:17:46 CDT)
n.runs-SA-2009.001 - OS X CFNetwork advisory
- securitynruns.com (Fri May 15 2009 - 03:47:14 CDT)
Namad Cms Remote File Download
- infosecuritylab.ir (Tue May 19 2009 - 06:52:07 CDT)
NetDecision TFTP Server 4.2 TFTP Directory Traversal
- vuln_researchprinceofnigeria.org (Sun May 17 2009 - 11:45:35 CDT)
New Browser Security Paper: Why Silent Updates Boost Security
- Stefan Frei (Tue May 05 2009 - 16:46:23 CDT)
New paper: Understanding Microsoft's KB971492 IIS WebDAV Vuln
- Steve Friedl (Wed May 27 2009 - 14:51:50 CDT)
New WebApp security paper: Anti-fraud Image Solutions
- WebAppSec (Thu Apr 30 2009 - 21:50:26 CDT)
Novell Groupwise fails to properly sanitize emails.
- c3rb3rvideotron.ca (Thu May 28 2009 - 14:46:58 CDT)
Novell GroupWise Internet Agent Remote Buffer Overflow Vulnerabilities
- VUPEN Security Research (Thu May 21 2009 - 21:17:36 CDT)
Novell GroupWise Web Access Multiple XSS
- swhitesecurestate.com (Thu May 21 2009 - 11:18:44 CDT)
PAPER: Dynamic Data Flow Analysis via Virtual Code Integration (aka The SpiderPig case)
- Piotr Bania (Mon May 18 2009 - 07:32:01 CDT)
PAPER: Generic Unpacking of Self-modifying, Aggressive, Packed Binary Programs
- Piotr Bania (Mon May 25 2009 - 11:18:32 CDT)
Persistent XSS in Kayako Support Suite
- pen-testcomodo.com (Wed May 06 2009 - 16:34:59 CDT)
PHP Nuke v.8.0 (referer) SQL Injection
- aa.com (Fri May 29 2009 - 05:53:17 CDT)
- darkz.gsagmail.com (Wed May 27 2009 - 02:14:46 CDT)
Pinnacle Studio 12 "Hollywood FX Compressed Archive" (.hfz) directory traversal vulnerability poc
- ipsdixgmail.com (Wed May 13 2009 - 11:37:25 CDT)
POC & exploit for Apache mod_rewrite off-by-one
- arulvadivel1rediffmail.com (Tue May 19 2009 - 07:30:27 CDT)
registration open!
- kgconferencegmail.com (Mon May 18 2009 - 08:14:24 CDT)
rPSA-2009-0084-1 kernel
- rPath Update Announcements (Fri May 15 2009 - 21:39:42 CDT)
rPSA-2009-0086-1 postgresql postgresql-contrib postgresql-server
- rPath Update Announcements (Tue May 19 2009 - 14:03:40 CDT)
rPSA-2009-0091-1 cyrus-sasl cyrus-sasl-server
- rPath Update Announcements (Wed May 27 2009 - 16:56:26 CDT)
rPSA-2009-0092-1 ntp ntp-utils
- rPath Update Announcements (Wed May 27 2009 - 17:03:53 CDT)
rPSA-2009-0095-1 tshark wireshark
- rPath Update Announcements (Wed May 27 2009 - 17:36:56 CDT)
SEC Consult SA-20090525-0 :: Nortel Contact Center Manager Server Authentication Bypass Vulnerability
- Bernhard Mueller (Tue May 26 2009 - 09:43:57 CDT)
SEC Consult SA-20090525-1 :: Nortel Contact Center Manager Server Password Disclosure Vulnerability
- Bernhard Mueller (Tue May 26 2009 - 09:45:06 CDT)
SEC Consult SA-20090525-2 :: SonicWALL Global Security Client Local Privilege Escalation Vulnerability
- Bernhard Mueller (Tue May 26 2009 - 09:46:23 CDT)
SEC Consult SA-20090525-3 :: SonicWALL Global VPN Client Local Privilege Escalation Vulnerability
- Bernhard Mueller (Tue May 26 2009 - 09:47:29 CDT)
SEC Consult SA-20090525-4 :: SonicOS Format String Vulnerability
- Bernhard Mueller (Tue May 26 2009 - 09:48:10 CDT)
Secunia Research: Garmin Communicator Plug-In Domain Locking Security Bypass
- Secunia Research (Thu May 07 2009 - 02:28:06 CDT)
Secunia Research: IBM Tivoli Storage Manager Remote Agent Service Buffer Overflows
- Secunia Research (Mon May 04 2009 - 07:13:27 CDT)
Secunia Research: Microsoft PowerPoint Atom Parsing Buffer Overflows
- Secunia Research (Tue May 12 2009 - 12:56:04 CDT)
Secunia Research: Sun Solaris "sadmind" Buffer Overflow Vulnerability
- Secunia Research (Sat May 23 2009 - 02:35:48 CDT)
Secunia Research: Sun Solaris "sadmind" Integer Overflow Vulnerability
- Secunia Research (Sat May 23 2009 - 02:37:13 CDT)
Security Advisory: Banks in Australia
- militan.c7gmail.com (Tue May 12 2009 - 08:13:33 CDT)
Security tools list: First Version
- Ulises2k (Thu Apr 30 2009 - 10:05:08 CDT)
Serena Dimensions CM Desktop Client does not validate the server SSL certificate
- roland.gruber.externunicreditgroup.eu (Fri May 22 2009 - 02:57:09 CDT)
Shakacon Security Conference - Trainers and Speakers Finalized
- Shakacon (Tue May 19 2009 - 17:39:31 CDT)
SonicWALL SSL-VPN Appliance Format String Vulnerability
- Patrick Webster (Fri May 29 2009 - 00:14:19 CDT)
speaker Bill Blunden on Rootkits...
- Alex Keller (Fri May 08 2009 - 22:15:22 CDT)
SQL INJECTION VULNERABILITIES--ST-Gallery version 0.1 alpha-->
- y3nh4ck3rgmail.com (Thu May 07 2009 - 10:13:50 CDT)
Sun IDM Arbitrary Commands Execution Vulnerability
- abbscanit.be (Tue May 12 2009 - 09:40:08 CDT)
Survey: "MIME/Content-Type-Sniffing" Issues in Image Uploads in Forum Scripts
- Jacques Copeau (Thu May 28 2009 - 03:04:40 CDT)
Syhunt: A-A-S (Application Access Server) Multiple Security Vulnerabilities
- Felipe M. Aragon (Mon May 11 2009 - 20:05:42 CDT)
Symantec Fax Viewer Control v10 (DCCFAXVW.DLL) remote buffer overflow exploit
- Nick FitzGerald (Thu Apr 30 2009 - 18:45:50 CDT)
The security tools list, new version with more than 200 new tools!
- Ying (Wed May 13 2009 - 07:58:17 CDT)
- Ying (Tue May 12 2009 - 13:28:19 CDT)
- Stephen Mullins (Tue May 12 2009 - 12:52:09 CDT)
- Ying (Tue May 12 2009 - 08:02:16 CDT)
TinyWebGallery <= 1.7.6 LFI / Remote Code Execution Exploit
- michaelmdempfle.de (Mon May 11 2009 - 10:24:20 CDT)
- travestitravesti.in (Sat May 09 2009 - 20:42:20 CDT)
Universal XSS in all Google Services
- Nam Nguyen (Tue May 12 2009 - 05:11:32 CDT)
- InfernoSecureThoughts.com (Fri May 08 2009 - 21:03:15 CDT)
Update: [TZO-15-2009] Aladdin eSafe generic bypass - Forced release
- Thierry Zoller (Thu May 07 2009 - 03:55:12 CDT)
User options changer (SQLi) EXPLOIT --Bigace CMS -stable release- 2.5-->
- y3nh4ck3rgmail.com (Tue May 12 2009 - 12:01:40 CDT)
USER OPTIONS CHANGER EXPLOIT --MiniTwitter v0.2-Beta+->
- y3nh4ck3rgmail.com (Fri May 01 2009 - 09:24:53 CDT)
Vanilla v.1.1.7 Cross-Site Scripting
- darkz.gsagmail.com (Wed May 27 2009 - 02:54:10 CDT)
VMSA-2009-0007 VMware Hosted products and ESX and ESXi patches resolve security issues
- VMware Security team (Thu May 28 2009 - 23:09:52 CDT)
Vpopmail/QmailAdmin User's Quota Multiple Integer Overflows
- Jacobo Avariento Gimeno (Fri May 08 2009 - 13:37:46 CDT)
W3af ninja training class in NYC
- Michelangelo Sidagni (Tue May 26 2009 - 15:43:16 CDT)
Whitepaper
- Jared DeMott (Thu May 28 2009 - 18:01:18 CDT)
WinAppDbg module v1.1 is out!
- Mario Alejandro Vilas Jerez (Fri May 15 2009 - 21:54:26 CDT)
xcon2009 is coming
- bugdiggeryahoo.cn (Tue May 12 2009 - 01:06:17 CDT)
ZDI-09-019: Microsoft Office PowerPoint OutlineTextRefAtom Parsing Memory Corruption Vulnerability
- ZDI Disclosures (Tue May 12 2009 - 14:21:54 CDT)
ZDI-09-020: Microsoft Office PowerPoint Notes Container Heap Overflow Vulnerability
- ZDI Disclosures (Tue May 12 2009 - 14:21:59 CDT)
ZDI-09-021: Apple QuickTime PICT Unspecified Tag Heap Overflow Vulnerability
- ZDI Disclosures (Wed May 27 2009 - 17:40:32 CDT)
ZDI-09-022: Apple Safari Malformed SVGList Parsing Code Execution Vulnerability
- ZDI Disclosures (Tue May 19 2009 - 14:07:05 CDT)
ZDI-09-023: Apple OS X ATSServer Compact Font Format Parsing Memory Corruption Vulnerability
- ZDI Disclosures (Tue May 19 2009 - 14:08:27 CDT)
“Cross-Site Scripting” vulnerability in MyBB 1.4.5
- Jacques Copeau (Sun May 03 2009 - 06:59:59 CDT)

Last message date: Fri May 29 2009 - 14:12:30 CDT
Archived on: Fri May 29 2009 - 14:12:31 CDT

302 messages sorted by: [ author ] [ date ] [ thread ]